I am completely aware of keylogger. When I use my university's computer, I am afraid someone may run keylogger and store my password or my personal information everything. Is there any way to prevent from keylogger or maybe just I can know there is keylogger?

Don't tell me about CTR+ALT+DEL, some keylogger can even run in invisible mode.

Any help?? :confused:

01-11-2004

Fordy

Identifying a systemwide hook is pretty difficult. As far as I know there isnt an enumeration API.

You could use one of the tools from the SDK to see what modules are mapped into a process, but this would be pretty hit & miss..

I guess you could also set up your own systemwide hook with a WH_DEBUG flag. This hook will then be called before any keyloggers and alert you to their presence.

01-11-2004

afreedboy

Quote:

Originally posted by Fordy I guess you could also set up your own systemwide hook with a WH_DEBUG flag. This hook will then be called before any keyloggers and alert you to their presence.

I don't know how to do that.

Could you explain me in details?

01-11-2004

golfinguy4

Use a liveCD version of Linux. Easy and painless.

01-11-2004

Fordy

Quote:

Originally posted by afreedboy I don't know how to do that.

Could you explain me in details?

Do a search on the board for SetWindowsHook & keyloggers...(I've andswered some in my time)

no, i dont thinkt hat is what he is saying. I believe he is saying he is worried that in the case he has to use a publically accessible computer to log into something, such as this site, his personal information will get stolen, not him actually storing cookies or files which contain info. afreedboy, just do what fordy mentioned about checking for keystroke loggers.

P.S. ->Fordy: what about CTRL+ALT+DEL, is there anyway someone can actually intercept that key combination so that it doesnt get processed?

01-11-2004

Fordy

Quote:

Originally posted by EvBladeRunnervE P.S. ->Fordy: what about CTRL+ALT+DEL, is there anyway someone can actually intercept that key combination so that it doesnt get processed?

(Assuming >= Win2000)
Not through a key logger....that key combination is processed pretty low down and launches the current GINA (the process that controls loggin onto the system)...you can write your own GINA dll and register that with Windows, but it's not a simple task..there's stuff at MSDN on writing GINAs

01-12-2004

ober

Here's a better idea... if you have something that sensative, don't access it on a public computer.

01-12-2004

afreedboy

Quote:

Originally posted by ober5861 Here's a better idea... if you have something that sensative, don't access it on a public computer.

Yes, of course, it's better idea. But sometimes, I can't avoid using public computer.

01-12-2004

EvBladeRunnervE

Quote:

(Assuming >= Win2000)
Not through a key logger....that key combination is processed pretty low down and launches the current GINA (the process that controls loggin onto the system)...you can write your own GINA dll and register that with Windows, but it's not a simple task..there's stuff at MSDN on writing GINAs

__________________

wait a second, you are telling me all it takes is a somewhat educated programmer to go onto MSDN, research a bit, then they can make a program that:

1) gets access to their user info through a GINA

2) then records keystrokes

this would cause hell in most school computers as most people have accounts that they log in through the winlogon screen, and this renders CTRL+ALT+DEL'ing to make sure it is a proper login screen and not just some scriptkiddies form null and void.
... I am going to start sticking with linux...

01-12-2004

Waldo2k2

that's why im trying to convince my school to migrate from windows to SuSe (they use novell on windows right now, they could upgrade to SuSe because novell just bought them out). I've won over the admin, she's pretty smart and open minded and knows that the students here don't need to worry about the differences between linux and windows (specifically between kde and windows). They won't notice them, especially with the plethora of windows themes for kde. And in this manner we could lock them out of everything, still give them the tools they need to complete their work, and still access the server which is already running a version of novell.